Are you studying for the CEH certification?

Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.

Upgrade Account

Which of the following conditions must exist to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?

The session cookies generated by the application do not have the HttpOnly flag set

The web application should not use random tokens

The victim user must open the malicious link with Internet Explorer, prior to version 8

The victim user must open the malicious link with a Firefox version prior to version 3


Web Application Vulnerabilities

Video Training

Train with Skillset and pass your certification exam. Faster. Guaranteed.


Skillset helps you pass your certification exam.

Contributions and Interactions
Practice Questions

Study thousands of practice questions that organized by skills and ranked by difficulty.

Contributions and Interactions
Personalized Training

Create a tailored training plan based on the knowledge you already possess.

Training Video Selector
Exam Readiness

Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.

Get A Free Skillset Account